WO2006070322A1 - Key generation using biometric data and secret extraction codes - Google Patents
Key generation using biometric data and secret extraction codes Download PDFInfo
- Publication number
- WO2006070322A1 WO2006070322A1 PCT/IB2005/054376 IB2005054376W WO2006070322A1 WO 2006070322 A1 WO2006070322 A1 WO 2006070322A1 IB 2005054376 W IB2005054376 W IB 2005054376W WO 2006070322 A1 WO2006070322 A1 WO 2006070322A1
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- collection
- codes
- key
- code
- terminal
- Prior art date
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
- G06F21/32—User authentication using biometric data, e.g. fingerprints, iris scans or voiceprints
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0861—Generation of secret information including derivation or calculation of cryptographic keys or passwords
- H04L9/0866—Generation of secret information including derivation or calculation of cryptographic keys or passwords involving user or device identifiers, e.g. serial number, physical or biometrical information, DNA, hand-signature or measurable physical characteristics
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/06—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols the encryption apparatus using shift registers or memories for block-wise or stream coding, e.g. DES systems or RC4; Hash functions; Pseudorandom sequence generators
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/06—Network architectures or network communication protocols for network security for supporting key management in a packet data network
- H04L63/061—Network architectures or network communication protocols for network security for supporting key management in a packet data network for key exchange, e.g. in peer-to-peer networks
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/14—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols using a plurality of keys or algorithms
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3236—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using cryptographic hash functions
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0861—Network architectures or network communication protocols for network security for authentication of entities using biometrical features, e.g. fingerprint, retina-scan
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3226—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a predetermined code, e.g. password, passphrase or PIN
- H04L9/3231—Biological data, e.g. fingerprint, voice or retina
Definitions
- the present invention relates to the generation of keys for use in security systems, and in particular relates to the generation of keys from physical identifiers.
- the protocol used by Alice and the Bank comprises two phases, the enrolment phase and the application phase.
- FIG. 1 shows the system architecture required to carry out the enrolment phase.
- a Certification Authority receives a measurement of Alice's biometrics X n , over a secure channel and derives a secret S and, from this, cryptographic key F(S), as well as some helper data W.
- CA Certification Authority
- Such a method of deriving keys from physical identifiers is described in "New Shielding Functions to Enhance Privacy and Prevent Misuse of Biometric Templates" by J.P. Linnartz and P. Tuyls, AVBPA 2003.
- the helper data W and the cryptographic key F(S) are stored in a database of the bank.
- the helper data W is used during the application phase to allow a terminal to derive the same cryptographic key F(S) from a noisy measurement of Alice's biometrics, Y n .
- a noisy measurement Y n of Alice's biometrics is obtained at a terminal.
- Alice enters conventional user identity data, such as a user name, into the terminal, and the user identity data is sent to the Bank.
- the Bank accesses its database using this data and retrieves the helper data W associated with Alice.
- the helper data W is sent to Alice's terminal over a public authenticated channel.
- the helper data W together with the noisy measurement Y n of Alice's biometrics are used to derive a key F(V).
- F(S) and F(V) are then used to encrypt communications sent from the Bank to Alice and from Alice to the Bank respectively.
- F(V) must equal F(S) in order for the encrypted communications to be decoded.
- the information in the database of the Bank should not reveal any sensitive information about X n .
- the helper data W that is sent over the public authenticated channel should not give any information about the cryptographic key F(S).
- the secrecy of a key F(Si) should be guaranteed given the helper data Wi and all of the other key/helper data pairs, F(S 1 ), W 1 ; ...; F(Si -1 ), Wi -1 ; F(Si +1 ), Wi +1 ; ...; F(SK), WK.
- CA Certification Authority
- an attacker that does not share a secure channel with Alice can steal cryptographic keys and helper data from one or more of the parties who share a secure channel with Alice.
- he has access to F(Si), Wi.
- the sensor and processing devices in the terminal that Alice uses during the application phase are tamper resistant.
- Biometric templates are processed measurement data, i.e. feature vectors, and are modelled as realizations of a random process. Biometrics of different individuals are independent realizations of a random process that is equal for all individuals.
- the processing of biometrics results in templates that can be described by n independent identically distributed (i.i.d) random variables with a known distribution P x .
- the probability that the biometric sequence X n of a certain individual equals x n is defined by
- noisy measurements made during the application phase are modelled as observations of biometrics through a memoryless noisy channel.
- SECs Secret Extraction Codes
- S denotes the set of secrets
- Xand 1 Y denote the input and output alphabets respectively of the channel representing the noisy measurements.
- the condition in Eq. (4) expresses that unambiguous encoding and decoding is possible and the condition of Eq. (5) implies a low probability of error.
- the SECs are normal error correcting codes.
- the cryptographic keys from the secret extraction codes, the following are defined:
- a secret extraction code C ⁇ £ ⁇ side (D 1 ) ⁇ jf
- the Bank sends the helper data W to Alice over a public authenticated channel.
- C is a collection of SECs, and x n e X n is the biometric template of Alice, then if there is only one secret extraction code in the collection available for use with a particular biometric (i.e.
- 1), then clearly only one cryptographic key can be derived from x n .
- is small cannot be used reliably by users for the extraction of multiple cryptographic keys. Therefore, it is an object of the present invention to provide an extended set of secret extraction codes for use in extracting cryptographic keys from a particular biometric identifier.
- a method of generating a key for encrypting communications between first and second terminals comprising: obtaining a measurement of characteristics of a physical identifier of a user; and extracting a key from the physical identifier using a code selected from a collection of codes, each code in the collection defining an ordered mapping from a set of values of the characteristics to a set of keys; wherein the collection of codes comprises at least one code in which the ordered mapping is a permutation of the ordered mapping of one of the other codes in the collection.
- Fig. 1 shows a system for carrying out an enrolment process for a user
- Fig. 2 shows a system for carrying out an application process for a user
- Fig. 3 is a flow chart showing the method of generating a cryptographic key in accordance with the invention.
- Fig. 4 is a flow chart showing the method of expanding the set of secret extraction codes in accordance with the invention.
- the present invention provides a method of generating a key for encrypting communications between first and second terminals in which the collection of SECs used for key extraction has been extended.
- 1 for all x n e X n .
- the method according to the invention adds SECs to C such that
- the method achieves
- the collection of secret extraction codes is extended by adding permuted versions of the existing secret extraction codes.
- the secret extraction codes are ordered sets of encoding/decoding region pairs. That is, the secret extraction codes relate a set of values of characteristics of a physical identifier to a set of keys.
- the ordering of the set of values and set of keys in the secret extraction code implies a mapping from "regions" (a region being a particular set of values of characteristics of the physical identifier) to keys.
- the present invention extends this collection by adding secret extraction codes that have the same "regions" as the original secret extraction codes in the collection but with a different mapping to keys.
- Figure 3 is a flow chart showing a method of expanding the set of secret extraction codes in accordance with the invention.
- a collection of secret extraction codes is defined.
- the collection may comprise one or more secret extraction codes.
- Each secret extraction code defines a mapping between sets of values of characteristics of a physical identifier and a set of keys. That is, based on the measured values of the characteristics, the measurement is assigned to one of multiple regions. The regions may be such that all measurements within a region are similar to each other, or may be such that each region includes disparate measurements. Given the assigned region, a selected secret extraction code then defines a particular key from the set of available keys.
- step 104 the collection of secret extraction codes is expanded by permuting the mapping between the sets of values of the characteristics of the physical identifier and the set of keys.
- the permutation is a cyclic permutation, as will be described in more detail below.
- the permutation is a non-cyclic permutation.
- Figure 4 is a flow chart showing the method of generating a cryptographic key for encrypting communications between first and second terminals using the expanded set of secret extraction codes in accordance with the invention. The method is applicable to both the enrolment phase and the application phase.
- a measurement is taken of characteristics of a physical identifier of a user. As described above, when this measurement is made during the application phase, the measurement will be noisy, meaning that it will not exactly match the measurement taken by the certification authority during enrolment.
- a secret extraction code is selected from a collection of codes.
- at least one of the codes in the collection has a mapping between values of the characteristics of the physical identifier and the set of keys that is a cyclic permutation of the ordered mapping of one of the other codes in the collection.
- the certification authority randomly selects one of the secret extraction codes from the collection.
- the first terminal selects the appropriate secret extraction code using helper data that was generated by the certification authority at the time of enrolment.
- the helper data is generated by the certification authority and is stored in a memory of the second terminal.
- the selected secret extraction code is used to extract a key from the measurement of the characteristics of the physical identifier.
- a one-way function is normally used to generate the encryption key from the extracted key.
- the certification authority sends the encryption key to the second terminal, where it is stored in a memory.
- the generated encryption key is used to encrypt communications to be sent to, and to decrypt communications received from, the second terminal.
- a permutation process is used in order to generate additional secret extraction codes from a first secret extraction code.
- measurements in a first region are mapped to a first key
- measurements in a second region are mapped to a second key, and so on
- measurements in a first permutation measurements in a first region are mapped to the second key
- measurements in a second region are mapped to a third key, and so on, until measurements in a final region are mapped to the first key.
- measurements in a second permutation measurements in a first region are mapped to the third key
- measurements in a second region are mapped to a fourth key, and so on, until measurements in the final region are mapped to the second key.
- Equation 13 imposes requirements on the one-way function F.
- One-way functions that are not vulnerable to the above-mentioned attack include, for example, SHA-I, or one-way iunctions derived from block ciphers.
- E ⁇ is a block cipher (e.g. LOMBOK or DES) using a fixed publicly known key K
- F(S) E ⁇ (S) ⁇ S . (14)
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- General Engineering & Computer Science (AREA)
- Computer Hardware Design (AREA)
- Theoretical Computer Science (AREA)
- Computing Systems (AREA)
- Software Systems (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Storage Device Security (AREA)
- Measurement Of The Respiration, Hearing Ability, Form, And Blood Characteristics Of Living Organisms (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
Description
Claims
Priority Applications (4)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN2005800450426A CN101091348B (en) | 2004-12-28 | 2005-12-22 | Key generation using biometric data and secret extraction codes |
US11/722,443 US8583936B2 (en) | 2004-12-28 | 2005-12-22 | Key generation using biometric data and secret extraction codes |
EP05824783A EP1834441A1 (en) | 2004-12-28 | 2005-12-22 | Key generation using biometric data and secret extraction codes |
JP2007547779A JP5011125B2 (en) | 2004-12-28 | 2005-12-22 | A key generation method using biometric data and secret information extraction code. |
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
EP04107011 | 2004-12-28 | ||
EP04107011.1 | 2004-12-28 |
Publications (1)
Publication Number | Publication Date |
---|---|
WO2006070322A1 true WO2006070322A1 (en) | 2006-07-06 |
Family
ID=35998407
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/IB2005/054376 WO2006070322A1 (en) | 2004-12-28 | 2005-12-22 | Key generation using biometric data and secret extraction codes |
Country Status (6)
Country | Link |
---|---|
US (1) | US8583936B2 (en) |
EP (1) | EP1834441A1 (en) |
JP (1) | JP5011125B2 (en) |
KR (1) | KR20070086656A (en) |
CN (1) | CN101091348B (en) |
WO (1) | WO2006070322A1 (en) |
Cited By (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2008062340A2 (en) * | 2006-11-21 | 2008-05-29 | Koninklijke Philips Electronics N.V. | Fuzzy biometrics based signatures |
US9065640B2 (en) | 2009-11-04 | 2015-06-23 | Samsung Sds Co., Ltd. | Method and apparatus for generating non-interactive key and method for communication security using the same |
Families Citing this family (16)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US9384338B2 (en) * | 2004-06-09 | 2016-07-05 | Genkey Netherlands B.V. | Architectures for privacy protection of biometric templates |
US7779268B2 (en) * | 2004-12-07 | 2010-08-17 | Mitsubishi Electric Research Laboratories, Inc. | Biometric based user authentication and data encryption |
US8625785B2 (en) | 2008-05-15 | 2014-01-07 | Qualcomm Incorporated | Identity based symmetric cryptosystem using secure biometric model |
EP2417546B1 (en) | 2009-04-10 | 2018-01-03 | Koninklijke Philips N.V. | Combined authentication of a device and a user |
CN102428469B (en) | 2009-05-19 | 2015-11-25 | 皇家飞利浦电子股份有限公司 | For retrieving and check the device of medical image |
US10339341B2 (en) * | 2014-05-07 | 2019-07-02 | Hush Hush | Methods and systems for obfuscating sensitive information in computer systems |
US9832190B2 (en) * | 2014-06-29 | 2017-11-28 | Microsoft Technology Licensing, Llc | Managing user data for software services |
JP2016131335A (en) | 2015-01-14 | 2016-07-21 | 富士通株式会社 | Information processing method, information processing program and information processing device |
WO2016190910A2 (en) * | 2015-01-28 | 2016-12-01 | Hewlett Packard Enterprise Development Lp | Block cipher |
US10733415B1 (en) * | 2015-06-08 | 2020-08-04 | Cross Match Technologies, Inc. | Transformed representation for fingerprint data with high recognition accuracy |
JP6834771B2 (en) * | 2017-05-19 | 2021-02-24 | 富士通株式会社 | Communication device and communication method |
US11223478B2 (en) * | 2018-04-04 | 2022-01-11 | Sri International | Biometric authentication with template privacy and non-interactive re-enrollment |
US11405386B2 (en) | 2018-05-31 | 2022-08-02 | Samsung Electronics Co., Ltd. | Electronic device for authenticating user and operating method thereof |
CN108717635B (en) * | 2018-06-08 | 2023-06-09 | 中国农业银行股份有限公司 | Method and system based on multi-biological feature authentication or identification |
KR102398962B1 (en) | 2019-12-27 | 2022-05-17 | 상명대학교산학협력단 | Device and method for fuzzy extraction from lattices |
KR102425916B1 (en) | 2020-10-23 | 2022-07-27 | 상명대학교산학협력단 | Device and method for lattice-based fuzzy extraction supporting variable length fuzzy data |
Citations (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20030219121A1 (en) * | 2002-05-24 | 2003-11-27 | Ncipher Corporation, Ltd | Biometric key generation for secure storage |
Family Cites Families (14)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US5680460A (en) * | 1994-09-07 | 1997-10-21 | Mytec Technologies, Inc. | Biometric controlled key generation |
US6122375A (en) * | 1996-12-10 | 2000-09-19 | Hitachi, Ltd. | Hash value generating method and device, data encryption method and device, data decryption method and device |
EP1261904A2 (en) | 2000-02-28 | 2002-12-04 | Edentity Limited | Information processing system and method |
JP3864675B2 (en) | 2000-03-09 | 2007-01-10 | 株式会社日立製作所 | Common key encryption device |
DE60111746T2 (en) | 2000-08-03 | 2006-05-18 | Koninklijke Philips Electronics N.V. | LINEAR TRANSFORMATION FOR SYMMETRIC ENCRYPTION SYSTEMS |
US20040193893A1 (en) * | 2001-05-18 | 2004-09-30 | Michael Braithwaite | Application-specific biometric templates |
GB0121793D0 (en) | 2001-09-08 | 2001-10-31 | Amphion Semiconductor Ltd | An apparatus for generating encryption/decryption keys |
NO316489B1 (en) * | 2001-10-01 | 2004-01-26 | Genkey As | System, portable device and method for digital authentication, encryption and signing by generating volatile but consistent and repeatable crypton keys |
ATE367618T1 (en) * | 2002-02-18 | 2007-08-15 | Precise Biometrics Ab | METHOD AND DEVICE FOR CHECKING FINGERPRINTS |
JP2006524352A (en) * | 2003-04-23 | 2006-10-26 | ヒューレット−パッカード デベロップメント カンパニー エル.ピー. | Identity-based encryption method and apparatus based on biometrics |
ATE474393T1 (en) | 2003-05-21 | 2010-07-15 | Koninkl Philips Electronics Nv | METHOD AND DEVICE FOR AUTHENTICATION OF A PHYSICAL ITEM |
WO2004104908A1 (en) * | 2003-05-21 | 2004-12-02 | Koninklijke Philips Electronics N.V. | Method and device for verifying the identity of an object |
US7779268B2 (en) * | 2004-12-07 | 2010-08-17 | Mitsubishi Electric Research Laboratories, Inc. | Biometric based user authentication and data encryption |
CN101278518B (en) | 2005-09-29 | 2014-10-29 | 皇家飞利浦电子股份有限公司 | Secure protection of biometric templates |
-
2005
- 2005-12-22 US US11/722,443 patent/US8583936B2/en active Active
- 2005-12-22 KR KR1020077014508A patent/KR20070086656A/en not_active Application Discontinuation
- 2005-12-22 EP EP05824783A patent/EP1834441A1/en not_active Ceased
- 2005-12-22 WO PCT/IB2005/054376 patent/WO2006070322A1/en active Application Filing
- 2005-12-22 JP JP2007547779A patent/JP5011125B2/en active Active
- 2005-12-22 CN CN2005800450426A patent/CN101091348B/en active Active
Patent Citations (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20030219121A1 (en) * | 2002-05-24 | 2003-11-27 | Ncipher Corporation, Ltd | Biometric key generation for secure storage |
Non-Patent Citations (1)
Title |
---|
TUYLS P ET AL: "Capacity and examples of template-protecting biometric authentication systems", BIOMETRIC AUTHENTICATION. ECCV 2004 INTERNATIONAL WORKSHOP, BIOAW 2004. PROCEEDINGS (LECTURE NOTES IN COMPUT. SCI. VOL.3087) SPRINGER-VERLAG BERLIN, GERMANY, 12 May 2004 (2004-05-12), Praag, pages 158 - 170, XP002372511, ISBN: 3-540-22499-8, Retrieved from the Internet <URL:http://users.skynet.be/pimtuyls/praag_final1.pdf> [retrieved on 20060315] * |
Cited By (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2008062340A2 (en) * | 2006-11-21 | 2008-05-29 | Koninklijke Philips Electronics N.V. | Fuzzy biometrics based signatures |
WO2008062340A3 (en) * | 2006-11-21 | 2008-07-17 | Koninkl Philips Electronics Nv | Fuzzy biometrics based signatures |
US8775809B2 (en) | 2006-11-21 | 2014-07-08 | Koninklijke Philips N.V. | Fuzzy biometrics based signatures |
US9065640B2 (en) | 2009-11-04 | 2015-06-23 | Samsung Sds Co., Ltd. | Method and apparatus for generating non-interactive key and method for communication security using the same |
Also Published As
Publication number | Publication date |
---|---|
EP1834441A1 (en) | 2007-09-19 |
JP2008526080A (en) | 2008-07-17 |
US20100027784A1 (en) | 2010-02-04 |
KR20070086656A (en) | 2007-08-27 |
JP5011125B2 (en) | 2012-08-29 |
CN101091348A (en) | 2007-12-19 |
CN101091348B (en) | 2011-09-07 |
US8583936B2 (en) | 2013-11-12 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US8583936B2 (en) | Key generation using biometric data and secret extraction codes | |
CN110300112B (en) | Block chain key hierarchical management method | |
US10594688B2 (en) | Privacy-enhanced biometrics-secret binding scheme | |
CN107925581B (en) | Biometric authentication system and authentication server | |
EP1815637B1 (en) | Securely computing a similarity measure | |
US6959394B1 (en) | Splitting knowledge of a password | |
JP4885853B2 (en) | Renewable and private biometrics | |
JP5537032B2 (en) | Secure threshold decryption protocol calculation | |
Barman et al. | Fingerprint-based crypto-biometric system for network security | |
AU2007202243B2 (en) | System portable device and method for digital authenticating, crypting and signing by generating short-lived cryptokeys | |
US20060036857A1 (en) | User authentication by linking randomly-generated authentication secret with personalized secret | |
WO2012056582A1 (en) | Information authentication method and information authentication system | |
KR20070024576A (en) | Biometric template protection and feature handling | |
AU2020216358B2 (en) | Biometric public key system providing revocable credentials | |
Giri et al. | A novel and efficient session spanning biometric and password based three-factor authentication protocol for consumer USB mass storage devices | |
JP7323004B2 (en) | Data extraction system, data extraction method, registration device and program | |
Chandra et al. | Generate an Encryption Key by using Biometric Cryptosystems to secure transferring of Data over a Network | |
GB2457491A (en) | Identifying a remote network user having a password | |
CN114065169B (en) | Privacy protection biometric authentication method and device and electronic equipment | |
Itakura et al. | Proposal on a multifactor biometric authentication method based on cryptosystem keys containing biometric signatures | |
CN110619228A (en) | File decryption method, file encryption method, file management system and storage medium | |
Abiega-L’Eglisse et al. | A New Fuzzy Vault based Biometric System robust to Brute-Force Attack | |
Sudhan et al. | An innovative proposal for secure cloud authentication using encrypted biometric authentication scheme | |
KR101268500B1 (en) | Method and system for secret key sharing based on key binding by using confidence intervals | |
CN115442102B (en) | Equation test method based on SM9 algorithm |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
121 | Ep: the epo has been informed by wipo that ep was designated in this application | ||
WWE | Wipo information: entry into national phase |
Ref document number: 2005824783 Country of ref document: EP |
|
WWE | Wipo information: entry into national phase |
Ref document number: 2007547779 Country of ref document: JP |
|
WWE | Wipo information: entry into national phase |
Ref document number: 11722443 Country of ref document: US |
|
WWE | Wipo information: entry into national phase |
Ref document number: 1020077014508 Country of ref document: KR |
|
WWE | Wipo information: entry into national phase |
Ref document number: 200580045042.6 Country of ref document: CN |
|
WWE | Wipo information: entry into national phase |
Ref document number: 2876/CHENP/2007 Country of ref document: IN |
|
NENP | Non-entry into the national phase |
Ref country code: DE |
|
WWP | Wipo information: published in national office |
Ref document number: 2005824783 Country of ref document: EP |